Data Privacy and AI Governance Manager

CohnReznick• , TX

1d•Remote

About The Position

As CohnReznick grows, so do our career opportunities. As one of the nation’s top professional services firms, CohnReznick creates rewarding careers in advisory, assurance, and tax with team members who value innovation and collaboration in everything they do! CohnReznick helps organizations optimize performance, manage risk, and maximize value through CohnReznick LLP (assurance services) and CohnReznick Advisory LLC (advisory and tax services). Together, the firm provides leaders with deep industry knowledge and relationships, solutions to address clients’ unique business goals and risks, and insight on how emerging market forces can drive opportunity. With offices nationwide, the firm serves organizations around the world as an independent member of Nexia. We currently have an exciting career opportunity for an Data Privacy and AI Governance Manager to join our Legal team. CohnReznick is a hybrid firm and most of our professionals are located within a commutable distance to one of our offices. This position is considered remote which means it does not require job duties be performed within proximity of a CohnReznick office location. However, as a remote employee, you may be required to be present at a CohnReznick office with scheduled notice for client work, team meetings, or trainings.

Requirements

Bachelor’s degree in a relevant field (e.g., Computer Science, Data Science, Law, Information Systems, or similar).
5+ years of experience in data privacy, compliance, or risk management roles, or equivalent experience implementing technology governance or privacy programs including experience in leading AI governance.
Strong knowledge of data protection regulations (such as GDPR, CCPA, etc.) and familiarity with newer AI governance frameworks such as the EU AI Act risk tiers, NIST AI RMF, and ISO/IEC 42001.
Understanding of artificial intelligence and machine learning concepts and their risks, including data provenance, explainability limits, model drift, algorithmic bias audits, and guardrails against prompt injection and training data leakage (deep technical expertise is not required, but must be comfortable collaborating with technical teams).
Familiarity with AI evaluation frameworks and methodologies, and experience designing or conducting AI evaluations.
Proven ability to develop and enforce policies or governance frameworks.
Experience conducting risk assessments or audits regarding technology or data initiatives.
Strong project management skills to drive governance programs.
Excellent communication and interpersonal skills.
Ability to work cross-functionally and influence stakeholders at all levels.
Capable of translating complex technical or regulatory information into clear, actionable guidance for business teams.
Demonstrated commitment to ethical technology use and protecting privacy.
Experience leading or coordinating cross-departmental initiatives or committees.
Strong analytical decision-making and problem-solving capabilities.

Nice To Haves

Advanced degree in Law, Business, Data Science, or related field, or certifications in privacy or risk management (e.g., CIPM, CIPT, CIPP, or similar).
Experience implementing AI governance frameworks or privacy compliance programs within a complex organization, especially in regulated industries (finance, healthcare, etc.).
Experience using AI GRC automation tools such as OneTrust or Credo AI.
Experience engaging with regulators, auditors, or industry consortia on compliance or AI governance topics.

Responsibilities

Develop, implement, and maintain the organization’s data privacy program including an AI governance framework including policies, procedures, and controls
Ensure compliance with applicable data privacy and AI laws and regulations.
Partners with business, legal, and technology teams to manage privacy risks, support data governance initiatives, and embed privacy-by-design principles across the organization.
Partner closely with Technology, AI and Governance, Risk and Compliance teams to ensure internal controls are in place and effective for AI usage and personal data processing, align enterprise data standards with regulatory and compliance requirements, and support policy development and guidelines on data handling and responsible AI use.
Establish continuous discovery mechanisms to identify, map, assess, and mitigate “Shadow AI” tools and use cases deployed without authorization.
Integrate AI governance and privacy requirements into product development, procurement, and implementation and ensure data and information governance aligns, enables and supports the adoption of AI tools and technologies.
Oversee governance for agentic AI and autonomous workflows, including human-in-the-loop protocols and manual override requirements.
Lead, facilitate and work with AI Governance Committee to define governance process, risk tiers and approval pathways based on materiality, impact, and regulatory exposure.
Assist in developing and delivering training programs and communications to promote a culture of responsible AI use across the organization.
Report on program status, risk metrics, and compliance issues to senior leadership and relevant stakeholders.
Stay up-to-date on emerging AI regulations (e.g., AI Act) and data privacy laws.